$ rpki-client -vvf rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft File: XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft (raw, json) Hash identifier: n36KDHZV2R7UhHyxKvc+pWEcMWEGXzUKhzm28cVD4V0= Subject key identifier: F8:73:A2:EE:DC:F4:15:F0:5C:7D:03:12:B5:D7:AF:12:9A:4A:E8:B1 Authority key identifier: 5F:1C:53:4A:EE:FF:4E:38:0C:E5:A0:9A:10:84:BF:8F:57:09:ED:08 Certificate issuer: /CN=A91A467D/serialNumber=5F1C534AEEFF4E380CE5A09A1084BF8F5709ED08 Certificate serial: 0B31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft Manifest number: 0B2A Signing time: Sat 18 Oct 2025 20:12:09 +0000 Manifest this update: Sat 18 Oct 2025 20:12:09 +0000 Manifest next update: Sat 25 Oct 2025 20:12:09 +0000 Files and hashes: 1: XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl (hash: TeeBT5yx4FW99MV21AqS/uLH1FAYDIfTQKHX6drxroI=) 2: 43272DE249AA11EABABC8610C4F9AE02.roa (hash: ArNuSAGS500F2Au8BkBemb4Fqw5PMgC4H5tbUjnLNK4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:12:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2865 (0xb31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A467D, serialNumber=5F1C534AEEFF4E380CE5A09A1084BF8F5709ED08 Validity Not Before: Oct 18 20:12:09 2025 GMT Not After : Oct 25 20:12:09 2025 GMT Subject: CN=68f3f499-e06d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:9b:fb:28:68:8f:34:1e:35:18:c7:09:43:33: 02:53:e5:35:f1:bb:36:1d:46:39:8d:fd:c4:07:93: 44:67:15:59:5d:86:79:8c:16:96:c3:15:e6:28:c7: 4b:47:c4:e0:31:58:71:6f:8b:c5:8a:a1:b4:01:a6: 59:3a:90:68:55:e5:cc:3d:9b:9e:96:96:68:35:a4: cb:23:40:16:5d:30:49:95:07:17:2f:81:0c:24:a5: 07:de:44:5b:14:a5:76:03:2c:77:25:4f:fa:80:9e: b2:b4:c5:fe:22:cb:b1:88:3f:49:bc:09:a5:23:03: ef:35:48:ad:08:10:75:c1:20:36:3e:05:89:1a:a8: 51:92:52:e7:da:9e:82:79:6c:74:a3:c8:60:9c:9b: ba:c5:08:91:d9:1c:57:26:3d:35:35:32:33:12:66: d8:5d:8f:97:5e:92:29:ae:7b:4a:fb:0b:9c:9b:0c: e7:19:28:8b:1b:66:2e:55:d7:96:c7:1f:d9:c5:8d: a4:65:98:68:0d:32:39:a9:0e:f5:b6:bb:47:73:70: ae:3d:92:7a:ae:4e:21:48:a7:7f:b5:ca:4c:69:93: f1:5a:d4:c8:b3:c9:70:3a:ea:2c:c5:a6:c3:59:bb: c8:fc:55:11:5e:74:10:c9:29:05:64:51:6e:17:f4: 33:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:73:A2:EE:DC:F4:15:F0:5C:7D:03:12:B5:D7:AF:12:9A:4A:E8:B1 X509v3 Authority Key Identifier: keyid:5F:1C:53:4A:EE:FF:4E:38:0C:E5:A0:9A:10:84:BF:8F:57:09:ED:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:19:a7:5e:6f:0a:bb:23:a0:60:c6:b6:89:96:d7:91:a8:e3: bb:fd:70:2a:69:8d:70:d2:a3:25:45:d4:14:84:fa:7c:20:ce: 41:66:f1:53:59:93:e2:c1:0f:da:54:f7:eb:74:11:27:ef:35: 10:02:1e:31:70:0a:fa:23:d6:ba:a3:28:62:7e:64:87:42:c0: 12:19:be:b4:9e:aa:de:8d:df:b6:71:47:27:63:4d:56:62:0b: bd:6d:48:a8:e1:d1:2f:93:f8:b3:b1:3d:8d:cf:4b:a5:2f:96: bf:e9:7e:67:d6:2f:2a:ae:2e:74:3e:02:2f:54:70:b7:1c:6e: ba:7d:38:54:78:ea:df:80:fd:9e:c6:48:5b:ce:f4:b1:5e:d2: cc:78:23:9b:63:97:1c:b6:7f:69:ea:2b:62:ef:0c:e5:85:97: 83:3d:d8:c8:95:b6:db:dc:89:13:c5:5d:61:bb:fd:ce:87:cd: 79:bd:e8:7b:8c:6b:a8:b5:9c:33:51:24:79:1b:75:90:a6:66: 71:62:00:c3:90:8a:ed:ba:ab:22:44:5e:83:74:a9:31:ee:72: f2:98:cd:65:f1:c2:b5:e1:69:b7:80:65:90:26:6f:23:20:e1: 15:de:b1:7c:d0:0c:e7:00:a9:5d:e4:7d:c2:e3:89:ae:cf:c7: b9:1e:9b:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ2N0QxMTAvBgNVBAUTKDVGMUM1MzRBRUVGRjRFMzgwQ0U1QTA5QTEwODRCRjhG NTcwOUVEMDgwHhcNMjUxMDE4MjAxMjA5WhcNMjUxMDI1MjAxMjA5WjAYMRYwFAYD VQQDEw02OGYzZjQ5OS1lMDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnJv7KGiPNB41GMcJQzMCU+U18bs2HUY5jf3EB5NEZxVZXYZ5jBaWwxXmKMdL R8TgMVhxb4vFiqG0AaZZOpBoVeXMPZuelpZoNaTLI0AWXTBJlQcXL4EMJKUH3kRb FKV2Ayx3JU/6gJ6ytMX+IsuxiD9JvAmlIwPvNUitCBB1wSA2PgWJGqhRklLn2p6C eWx0o8hgnJu6xQiR2RxXJj01NTIzEmbYXY+XXpIprntK+wucmwznGSiLG2YuVdeW xx/ZxY2kZZhoDTI5qQ71trtHc3CuPZJ6rk4hSKd/tcpMaZPxWtTIs8lwOuosxabD WbvI/FURXnQQySkFZFFuF/QzjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPhzou7c 9BXwXH0DErXXrxKaSuixMB8GA1UdIwQYMBaAFF8cU0ru/044DOWgmhCEv49XCe0I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDY3RC84NDhFN0QxODQ5 QTkxMUVBQTZGREQzMEZDNEY5QUUwMi9YeHhUU3U3X1RqZ001YUNhRUlTX2oxY0o3 UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h4eFRTdTdfVGpnTTVhQ2FFSVNfajFjSjdRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDY3RC84NDhFN0QxODQ5QTkxMUVBQTZGREQzMEZDNEY5QUUwMi9YeHhUU3U3X1Rq Z001YUNhRUlTX2oxY0o3UWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApGadebwq7I6BgxraJlteRqOO7/XAqaY1w0qMlRdQUhPp8IM5BZvFT WZPiwQ/aVPfrdBEn7zUQAh4xcAr6I9a6oyhifmSHQsASGb60nqrejd+2cUcnY01W Ygu9bUio4dEvk/izsT2Nz0ulL5a/6X5n1i8qri50PgIvVHC3HG66fThUeOrfgP2e xkhbzvSxXtLMeCObY5cctn9p6iti7wzlhZeDPdjIlbbb3IkTxV1hu/3Oh815veh7 jGuotZwzUSR5G3WQpmZxYgDDkIrtuqsiRF6DdKkx7nLymM1l8cK14Wm3gGWQJm8j IOEV3rF80AznAKld5H3C44muz8e5Hpv6 -----END CERTIFICATE-----Generated at Mon Oct 20 04:26:24 2025 by rpki-client